Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/d52020-ac08-4dc0-925d-65ab40855de2/1/VPYISqkvbuEfYw02Pnqg3-ww-pk.roa
File: VPYISqkvbuEfYw02Pnqg3-ww-pk.roa (raw, json)
Hash identifier: iRni9sVy/+az0mnpstP7gsCG+sJ55t8nv+DUS6VcBDo=
Subject key identifier: 54:F6:08:4A:A9:2F:6E:E1:1F:63:0D:36:3E:7A:A0:DF:EC:30:FA:99
Certificate issuer: /CN=c7ffd7ebbfa98083307c63f717a3aba7107696a2
Certificate serial: 018CC7932B1BDEEFC546D5E8E4F403758718
Authority key identifier: C7:FF:D7:EB:BF:A9:80:83:30:7C:63:F7:17:A3:AB:A7:10:76:96:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/x__X67-pgIMwfGP3F6OrpxB2lqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/d52020-ac08-4dc0-925d-65ab40855de2/1/VPYISqkvbuEfYw02Pnqg3-ww-pk.roa
Signing time: Tue 02 Jan 2024 00:29:19 +0000
ROA not before: Tue 02 Jan 2024 00:29:19 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 24904
IP address blocks: 185.216.240.0/22 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:93:2b:1b:de:ef:c5:46:d5:e8:e4:f4:03:75:87:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c7ffd7ebbfa98083307c63f717a3aba7107696a2
Validity
Not Before: Jan 2 00:29:19 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=54f6084aa92f6ee11f630d363e7aa0dfec30fa99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:78:13:99:15:3f:57:8a:71:29:cd:57:28:32:
c2:da:3c:6e:98:4d:9c:bc:b6:28:68:97:ae:9d:11:
c7:18:0f:6c:b8:3d:fa:df:b0:a0:c5:be:15:0e:14:
06:a8:d2:95:30:2c:87:d2:61:80:96:b6:66:df:b5:
03:96:f8:49:81:5b:73:cb:85:17:21:aa:61:35:76:
d4:e3:aa:01:f6:75:3d:ed:ee:d5:dd:5f:75:46:36:
69:44:f6:a2:15:7a:a0:98:ff:7d:fe:c5:f7:be:0f:
4a:8c:05:24:a1:6c:48:ce:52:0b:eb:b8:21:d9:83:
be:63:08:4f:11:cf:7d:33:65:3a:43:16:e3:84:aa:
cf:78:de:9f:3f:9d:72:44:b4:a3:42:e0:8a:de:a8:
f7:9d:d6:03:56:dc:c5:7a:18:d3:d7:ea:f1:81:a2:
1b:13:69:c0:29:2b:29:28:e8:34:2c:9f:68:df:81:
ef:41:73:2e:24:05:19:b8:c1:7a:48:1d:bf:ad:9b:
e8:3f:48:aa:63:58:41:b6:1c:7f:cf:0a:41:6f:a7:
a3:75:9f:9f:2b:a0:f1:4a:48:46:7c:1a:fa:81:18:
40:97:77:49:6b:f0:36:ff:f0:7c:b2:05:c7:05:4e:
7e:8d:5f:f4:3d:ac:75:a1:0a:62:e0:a1:51:13:85:
60:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:F6:08:4A:A9:2F:6E:E1:1F:63:0D:36:3E:7A:A0:DF:EC:30:FA:99
X509v3 Authority Key Identifier:
keyid:C7:FF:D7:EB:BF:A9:80:83:30:7C:63:F7:17:A3:AB:A7:10:76:96:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/x__X67-pgIMwfGP3F6OrpxB2lqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/d52020-ac08-4dc0-925d-65ab40855de2/1/VPYISqkvbuEfYw02Pnqg3-ww-pk.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/d52020-ac08-4dc0-925d-65ab40855de2/1/x__X67-pgIMwfGP3F6OrpxB2lqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.216.240.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:14:e1:96:7c:bc:3b:0d:e2:5c:eb:d7:f0:1e:52:ff:bc:c3:
4a:d3:1d:2b:3b:5f:c3:02:3d:80:a4:72:b6:fe:f3:11:fb:b1:
56:6e:8f:57:57:44:17:9e:d2:1d:7b:83:47:20:e6:31:bd:69:
3b:71:29:62:12:98:39:84:9e:60:ee:64:53:d6:63:4a:f4:ed:
28:c1:d9:d8:c0:0c:b6:ca:21:63:90:9b:8f:1f:89:8f:3a:0e:
5b:48:2d:1f:2b:72:f4:02:fe:59:49:3a:0c:bf:d0:7b:c9:aa:
dc:34:eb:fd:b8:3d:7c:9b:ca:1b:09:4e:f5:d0:a0:34:67:03:
5b:ce:24:c7:bf:70:5f:75:87:fc:f3:4c:95:ca:3d:32:d2:75:
9a:cf:52:5c:30:61:89:b4:50:f5:0f:13:ac:e5:49:7d:c3:19:
40:51:98:7d:48:aa:2f:69:1c:a4:2d:d7:40:7e:92:2f:e1:ef:
47:1a:41:2f:8f:7c:2c:32:72:5c:b9:59:1e:de:b4:76:1a:c6:
cd:81:fb:bc:ed:03:87:d3:4f:88:12:d5:1f:bf:7a:c7:c3:6e:
da:aa:e0:db:3c:d1:d8:c3:bc:6d:88:a7:80:5c:dc:d8:a5:b1:
fe:fc:5b:82:68:90:b2:f8:2d:38:3d:57:87:27:dd:5d:ac:39:
ed:9d:2f:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 15 16:28:32 2024 by rpki-client on console-fra.rpki-client.org